Portfolio Careers

Discover opportunities to work at a NightDragon portfolio company

Senior SAP Security Specialist



Posted on Thursday, April 11, 2024

About the job

The world’s most critical--and at-risk--business applications have been neglected for far too long. Onapsis eliminates this blind spot by providing cybersecurity solutions dedicated to business-critical applications. Whether running on-premises, in the cloud, or in a hybrid environment, Onapsis helps nearly 30% of the Forbes Global 100 understand the threats and risks across their SAP and Oracle landscapes.

We seek self-motivated and enthusiastic Security Specialists focussed on SAP who want to impact cybersecurity by continuing to advance, maintain, and enhance our platform features in Threat Detection and Response, Vulnerability Management, and Compliance Automation. In addition, understanding and investigating architecture of different platforms inside the SAP world, supporting with trusted information to other teams.

What you will be doing, your legacy:

The Senior SAP Security Specialist will assume a critical role in managing the Onapsis platform content by enhancing the set of capabilities detections. This senior-level position is tailored for cybersecurity professionals with extensive expertise in SAP security, capable of independently leading security initiatives, and ensuring the integrity, confidentiality, and availability of SAP systems and data. You will be engaged in evaluating, scoping, proposing and defining security checks to fulfill business solution requirements to protect our customers. Collaborating with a dynamic team of cybersecurity experts and developers, you'll cultivate robust proficiency in the realms of security and SAP.

With your deeply developed knowlege in SAP Security, you can handle support problem resolution, analyzing false positives and/or scan issues. Additionally, you will work with the Marketing team, collaborating with the Onapsis Blog and sharing our research results with the SAP security community (papers, blog posts, new material).


  • +7 years of experience in SAP security administration or consultancy
  • Strong knowledge in SAP platform architecture.
  • Strong knowledge in administration of SAP components: Message Server, Gateway, Web Dispatcher, ICM, Management Console.
  • Administration and implementation of SAP profile parameters and ACLs.
  • In-depth experience on managing SAP Systems, SoD and GRC (governance, risk and compliance).
  • Extensive experience of TCP/IP communication protocols, Operating System fundamentals and Networking.
  • Experience troubleshooting production environments using observability and monitoring tools
  • Strong problem-solving skills to address complex security challenges.
  • Leadership capabilities, including the ability to mentor and guide junior team members and provide strategic guidance.
  • Advanced English skills (oral & written).
  • A team player, with an eagerness to collaborate and learn from peers.
  • Outstanding communication skills, both in written and verbal forms.
  • Proactivity and Creativity.

Desired skills or interests in:

  • BASIS experience: Administration and maintenance of kernel upgrades and component versions.
  • Knowledge in SAP Platforms: BTP, S/4HANA, ABAP, Java, HANA, BusinessObjects, SAProuter.
  • Basic knowledge of Cloud Administration (Azure, AWS, Google Cloud Platform, SAP Cloud)
  • Command over Python, with an ability to read and craft code.
  • Experience reading ABAP code is a plus but definitely not a must.
  • Experience in Compliance processes related to SAP infrastructure.
  • Experience in customer support, basic troubleshooting.

What we offer:

  • A role in shaping the future of protecting the most critical applications that run the world's business and a career that grows as the company grows.
  • A unique culture of high achievement and teamwork.
  • Supportive and humble colleagues are the space's top problem solvers and innovators.
  • Financial security through competitive compensation and incentives.

About Onapsis:

Onapsis protects the business applications that run the global economy. The Onapsis Platform delivers vulnerability management, change assurance, and continuous compliance for business applications from leading vendors such as SAP, Oracle, and others. The Onapsis Platform is powered by the Onapsis Research Labs, the team responsible for the discovery and mitigation of more than 1,000 zero-day vulnerabilities in business applications.

Onapsis is headquartered in Boston, MA, with offices in Heidelberg, Germany and Buenos Aires, Argentina, and proudly serves hundreds of the world’s leading brands, including close to 30% of the Forbes Global 100, six of the top 10 automotive companies, five of the top 10 chemical companies, four of the top 10 technology companies, and three of the top 10 oil and gas companies.

For more information, connect with Onapsis on LinkedIn or visit https://www.onapsis.com.